From owner-freebsd-ipfw Tue May 14 22:47:46 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from rwcrmhc53.attbi.com (rwcrmhc53.attbi.com [204.127.198.39]) by hub.freebsd.org (Postfix) with ESMTP id 440E437B404 for ; Tue, 14 May 2002 22:47:38 -0700 (PDT) Received: from blossom.cjclark.org ([12.234.91.48]) by rwcrmhc53.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020514222231.QOGO2901.rwcrmhc53.attbi.com@blossom.cjclark.org>; Tue, 14 May 2002 22:22:31 +0000 Received: (from cjc@localhost) by blossom.cjclark.org (8.11.6/8.11.6) id g4EMMUm57429; Tue, 14 May 2002 15:22:30 -0700 (PDT) (envelope-from crist.clark@attbi.com) X-Authentication-Warning: blossom.cjclark.org: cjc set sender to crist.clark@attbi.com using -f Date: Tue, 14 May 2002 15:22:29 -0700 From: "Crist J. Clark" To: rick norman Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: ipfw and aliases Message-ID: <20020514152229.B57077@blossom.cjclark.org> Reply-To: cjclark@alum.mit.edu References: <3CDB2CED.DCC3092F@lmco.com> <20020511134633.A2824@blossom.cjclark.org> <3CE1599C.42071126@lmco.com> <20020514131100.A57077@blossom.cjclark.org> <3CE17755.12735706@lmco.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3CE17755.12735706@lmco.com>; from rick.norman@lmco.com on Tue, May 14, 2002 at 01:45:10PM -0700 X-URL: http://people.freebsd.org/~cjc/ Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, May 14, 2002 at 01:45:10PM -0700, rick norman wrote: > I'm probably giving too little detail. Basically I'm configuring bsd 4.5 > as an intermediate node router in a fairly complex topology. The different > aliases on an interface allow me to take different paths through this topology > based on the subnets. What I want to do is apply different characteristics > to multiple data streams based on the subnet they take leaving my router. > The pkt only has src and des ip which says nothing about the path the routing > protocols have picked. What information are the routing protocols using besides the destination IP? > The rules that I see available in the ipfw would catch > all the aliases leaving on an interface with no differentiation. Because there is no difference. The only information available on a packet being forwarded are the interface it came in on, the interface it is going out of, the next hop, and of course the data in the packet itself (the source and destination IPs). I'm not sure what other information you are trying to tap into. > It seems that > another key word, similar to the 'via' qualifier would allow me to individually > grab the outbound aliases. The needed info is available in the routing table > in the form of the next hop router, I just don't see a way to grab a pkt based > on the next hop address or the outbound subnet. Examining the next hop address on outgoing packets is not a big deal. It would be straight forward to add it to ipfw(8). But I'm still not sure what it has to do with local alias addresses. -- Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message